$ rpki-client -vvf rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.mft File: rdsr88QYJtbQ--jSvy8FLZil2Uk.mft (raw, json) Hash identifier: YNiN6WJ7Q791dfInm0NRLRazdDLrHjGlvcHGvsvbQZQ= Subject key identifier: 18:2A:A8:89:89:59:9A:43:52:02:11:EB:D6:82:E4:61:A7:AC:0C:6A Authority key identifier: AD:DB:2B:F3:C4:18:26:D6:D0:FB:E8:D2:BF:2F:05:2D:98:A5:D9:49 Certificate issuer: /CN=A91689C8/serialNumber=ADDB2BF3C41826D6D0FBE8D2BF2F052D98A5D949 Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdsr88QYJtbQ--jSvy8FLZil2Uk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.mft Manifest number: 0274 Signing time: Sun 19 Oct 2025 04:37:45 +0000 Manifest this update: Sun 19 Oct 2025 04:37:45 +0000 Manifest next update: Sun 26 Oct 2025 04:37:45 +0000 Files and hashes: 1: rdsr88QYJtbQ--jSvy8FLZil2Uk.crl (hash: GfxReBsSWb7E4d3vP5LxIXYuFkTG3gkuiGT8ahWTGbY=) 2: 3BB70A86092211F08BA72686C4F9AE02.roa (hash: 2J/4S4P7iHBoNIa8ALxa/H8YBNXVUqoF1W5QLX0G6vs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.crl rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdsr88QYJtbQ--jSvy8FLZil2Uk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:37:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91689C8, serialNumber=ADDB2BF3C41826D6D0FBE8D2BF2F052D98A5D949 Validity Not Before: Oct 19 04:37:45 2025 GMT Not After : Oct 26 04:37:45 2025 GMT Subject: CN=68f46b19-b8e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:76:e4:77:66:f2:6f:f5:2e:d9:c4:4b:3e:ae: e6:6f:9f:b4:08:e1:d2:34:57:d4:b8:0b:c7:83:c4: 5c:71:ba:d9:76:d4:d4:2a:11:52:38:c1:77:0c:72: 9e:35:f6:fe:83:08:d0:b8:93:0e:64:1a:e8:af:a4: 4a:95:1a:f2:c9:4e:c9:73:21:5a:b2:92:ac:4b:8e: 80:77:26:6e:20:11:07:4b:0f:72:88:11:3a:10:a6: 64:8a:c5:86:e4:24:dd:a9:7f:d6:94:ee:9e:2a:c2: b7:f6:2a:fd:1d:1f:b9:d7:f3:70:b2:7a:a3:12:27: cf:56:10:c8:81:0f:01:b1:45:af:1b:e1:b2:96:7a: df:47:39:65:59:5a:16:a1:42:f8:7d:e2:f5:f9:88: f3:e2:58:1b:e7:23:d7:93:31:25:9e:8e:0c:69:67: 30:4f:8a:cc:77:25:eb:ff:0a:ce:3c:16:4a:b1:0f: 06:22:21:1c:aa:90:b9:e3:54:e2:34:24:14:ef:d3: cb:f6:cd:9d:f5:70:eb:f2:75:95:72:0b:2d:ab:d2: e8:5f:44:e1:ba:b3:76:2a:15:0e:e8:b6:36:30:96: 67:c9:74:f8:1e:8b:99:f1:09:63:c6:b8:42:96:32: d7:c3:55:68:1c:f8:f5:29:97:fc:b1:32:37:e9:f1: 22:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:2A:A8:89:89:59:9A:43:52:02:11:EB:D6:82:E4:61:A7:AC:0C:6A X509v3 Authority Key Identifier: keyid:AD:DB:2B:F3:C4:18:26:D6:D0:FB:E8:D2:BF:2F:05:2D:98:A5:D9:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdsr88QYJtbQ--jSvy8FLZil2Uk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:e3:89:0c:06:ed:ec:e7:0d:aa:8d:de:52:59:88:a0:e0:65: 75:8d:c6:25:b9:19:17:6d:a3:01:55:b0:dd:f9:d1:33:22:d5: fe:60:53:d1:49:32:e9:12:4f:22:22:80:77:0e:1c:7e:e9:3c: a3:78:fd:2d:8c:a5:62:61:26:c1:85:69:c1:ad:e8:67:ba:b4: cc:48:f9:27:31:1a:41:ab:6c:d2:12:45:fe:45:a3:b8:c0:3b: fa:94:61:89:f3:51:5a:9d:b9:e3:7e:00:6b:c8:16:df:55:0d: 98:d9:19:f1:f1:4e:b2:72:57:61:3b:7a:4e:e1:69:fd:ca:08: ee:31:ae:04:34:82:0a:cc:4e:d8:2b:e8:a3:8a:7b:62:94:55: dd:bc:51:c4:bf:54:4d:8f:1d:08:22:7a:9d:ff:cf:15:1b:83: c2:02:22:ad:28:44:b6:e0:1c:3a:3e:a2:34:61:f7:2a:cf:ac: 76:da:22:be:b8:d0:f7:c4:7a:83:0b:32:1d:bd:e3:68:c6:b0: f5:77:d7:84:d6:41:c7:2e:c0:5f:c1:34:dd:5c:7d:d3:aa:ce: 2f:90:02:0a:6b:70:68:20:69:28:3a:06:04:70:41:72:87:45: c4:39:73:23:a5:c8:87:9e:d4:e4:6f:73:23:12:82:fc:c2:da: b5:8c:f6:38 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 ODlDODExMC8GA1UEBRMoQUREQjJCRjNDNDE4MjZENkQwRkJFOEQyQkYyRjA1MkQ5 OEE1RDk0OTAeFw0yNTEwMTkwNDM3NDVaFw0yNTEwMjYwNDM3NDVaMBgxFjAUBgNV BAMTDTY4ZjQ2YjE5LWI4ZTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBduR3ZvJv9S7ZxEs+ruZvn7QI4dI0V9S4C8eDxFxxutl21NQqEVI4wXcMcp41 9v6DCNC4kw5kGuivpEqVGvLJTslzIVqykqxLjoB3Jm4gEQdLD3KIEToQpmSKxYbk JN2pf9aU7p4qwrf2Kv0dH7nX83CyeqMSJ89WEMiBDwGxRa8b4bKWet9HOWVZWhah Qvh94vX5iPPiWBvnI9eTMSWejgxpZzBPisx3Jev/Cs48FkqxDwYiIRyqkLnjVOI0 JBTv08v2zZ31cOvydZVyCy2r0uhfROG6s3YqFQ7otjYwlmfJdPgei5nxCWPGuEKW MtfDVWgc+PUpl/yxMjfp8SK5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGCqoiYlZ mkNSAhHr1oLkYaesDGowHwYDVR0jBBgwFoAUrdsr88QYJtbQ++jSvy8FLZil2Ukw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4OUM4LzM4QjM4RTVFOERE NzExRUQ4NTIyNUE3RUM0RjlBRTAyL3Jkc3I4OFFZSnRiUS0talN2eThGTFppbDJV ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcmRzcjg4UVlKdGJRLS1qU3Z5OEZMWmlsMlVrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4 OUM4LzM4QjM4RTVFOERENzExRUQ4NTIyNUE3RUM0RjlBRTAyL3Jkc3I4OFFZSnRi US0talN2eThGTFppbDJVay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB7jiQwG7eznDaqN3lJZiKDgZXWNxiW5GRdtowFVsN350TMi1f5gU9FJ MukSTyIigHcOHH7pPKN4/S2MpWJhJsGFacGt6Ge6tMxI+ScxGkGrbNISRf5Fo7jA O/qUYYnzUVqdueN+AGvIFt9VDZjZGfHxTrJyV2E7ek7haf3KCO4xrgQ0ggrMTtgr 6KOKe2KUVd28UcS/VE2PHQgiep3/zxUbg8ICIq0oRLbgHDo+ojRh9yrPrHbaIr64 0PfEeoMLMh2942jGsPV314TWQccuwF/BNN1cfdOqzi+QAgprcGggaSg6BgRwQXKH RcQ5cyOlyIee1ORvcyMSgvzC2rWM9jg= -----END CERTIFICATE-----Generated at Sun Oct 19 23:24:18 2025 by rpki-client